Run npm audit and check for outdated/vulnerable dependencies. Returns structured output with vulnerability counts by severity, outdated packages, and recommended updates. Used for security validation and dependency health checks.
Skills(SKILL.md)は、AIエージェント(Claude Code、Cursor、Codexなど)に特定の能力を追加するための設定ファイルです。
詳しく見る →Run npm audit and check for outdated/vulnerable dependencies. Returns structured output with vulnerability counts by severity, outdated packages, and recommended updates. Used for security validation and dependency health checks.
**Version:** 2.0 **Total Agents:** 18 parallel agents across 5 stages + 1
Run a single-session engineering productivity audit on the codebase
Expert-level security auditing, compliance, code review, and vulnerability assessment
Эксперт по аудит-логам. Используй для создания систем логирования, compliance требований, структуры логов и мониторинга.
Implement immutable audit logging and SIEM integration.
Ensure every critical action is logged (vital for UAG/Trust Room).
Implement comprehensive audit logging for all admin actions, capturing user ID, action type, entity changes, IP address, and user agent. Use when tracking system activities or adding audit trails.
Comprehensive audit logging for compliance and security. Track user actions, data changes, and system events with tamper-proof storage.
Audit milestone progress and status
Audit codebase for performance bottlenecks and thread-safety issues
Run a single-session performance audit on the codebase
Prepare your codebase for security review using Trail of Bits' checklist. Helps set review goals, runs static analysis tools, increases test coverage, removes dead code, ensures accessibility, and generates comprehensive documentation (flowcharts, user stories, inline comments). (project, gitignored)
**Version:** 2.2 (Recovery Safeguards - Session #122)
Run a single-session refactoring audit on the codebase
Template and formatting guidelines for security audit reports. Provides consistent structure for findings, severity classification, ASVS mapping, and remediation recommendations.
Use when adding packages, bumping versions, or responding to security alerts. Enforces supply chain security and vulnerability remediation.
Run a single-session security audit on the codebase
Quick security audit checking for hardcoded secrets, SSRF vectors, injection points, dependency issues, and missing security headers
전체 SEMO 패키지 통합 품질 감사. Use when (1) 전체 패키지 품질 점검, (2) Agent/Skill/Command 표준 준수 검토, (3) 비효율적 구조 탐지, (4) 정기 감사 수행.
Comprehensive audit capabilities for security, code quality, module structure, compliance, and performance analysis. Use this skill when performing security audits, code reviews, vulnerability assessments, module structure validation, or generating audit reports.
Audit a checkpoint specification for realism and design decision forcing. Reviews specs to remove hand-holding, hidden corner cases, and architectural giveaways. Invoke with /audit-spec <problem> <checkpoint>.
Comprehensive guide to implementing audit trails and logging for AI agents including tracing, observability, compliance, and debugging
Audit UI/UX changes in a focus area against design guidelines for accessibility, consistency, and usability issues.
**Version:** 1.0 **Purpose:** Validate TDMS and Documentation Standards
Implementing comprehensive logging, tracking, and audit trails for AI systems to ensure compliance and enable debugging.
Audits deep link contracts and routing behavior. Use when validating
Auditing and updating npm dependencies to prevent security vulnerabilities in TypeScript projects
Analyze existing libraries for convention violations and report issues.
<user_command>/kata:audit-milestone</user_command>
Audits notification permission request flows. Use when reviewing or improving permission prompts, settings paths, or denial handling.
Audits the project for consistency issues that may arise from manual editing. Checks package scripts, tsconfig paths, README tables, and other conventions.
<objective>
Use this skill when auditing websites for SEO, analyzing search performance, checking technical SEO issues, or optimizing sites for search engines. Performs comprehensive SEO audits covering technical, on-page, and off-page factors. Invoke for SEO analysis, search optimization, keyword research, or improving search rankings.
Use when reviewing website copy, SEO titles/descriptions, marketing content, or public messaging - applies Anil Dash's shareability framework to ensure others can authentically talk about your work without you present
Control August smart locks and manage home access
Configure AI personality using the AURA protocol (HEXACO-based). Use when user wants to customize agent personality, reduce sycophancy, adjust communication style, or mentions AURA/personality configuration.
>
>
>
>
>
>
>
>
>
Generate content using austn.net AI services (TTS, images, etc.)
Provides tax knowledge and deduction validation for Harry's multi-entity Australian business ecosystem (MOKAI PTY LTD, MOK HOUSE PTY LTD, SAFIA Unit Trust, HS Family Trust, Harrison Robert Sayers sole trader). Integrates with Graphiti MCP for entity relationship memory and Serena MCP for calculation patterns. Automatically validates tax deductions, monitors GST thresholds, optimizes trust distributions, and tracks APRA/SAFIA royalty income. Triggers when discussing deductions, tax brackets, GST registration, trust distributions, business expenses, UpBank transactions, or Australian tax optimization. Uses lazy-loading knowledge architecture for token efficiency.
Review and analyze authentication and authorization patterns for security vulnerabilities.
Better Auth integration for Next.js 16 with Drizzle adapter. This skill should be used when connecting to a Better Auth instance, configuring OAuth providers, or implementing protected routes with proxy.ts.